Author: jmm Date: 2012-01-13 16:46:47 +0000 (Fri, 13 Jan 2012) New Revision: 18140 Modified: data/CVE/list Log: wireshark fixed NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-01-13 05:22:21 UTC (rev 18139) +++ data/CVE/list 2012-01-13 16:46:47 UTC (rev 18140) @@ -3,9 +3,9 @@ [squeeze] - as31 <no-dsa> (Minor issue) [lenny] - as31 <no-dsa> (Minor issue) CVE-2011-5059 (Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote ...) - TODO: check + NOT-FOR-US: Final Draft CVE-2011-5058 (The CmbWebserver.dll module of the Control service in 3S CoDeSys 3.4 ...) - TODO: check + NOT-FOR-US: 3S CoDeSys CVE-2012-0479 RESERVED CVE-2012-0478 @@ -847,7 +847,7 @@ NOT-FOR-US: GoAhead WebServer CVE-2009-5110 (dhttpd allows remote attackers to cause a denial of service (daemon ...) - dhttpd <unfixed> (low; bug #533665) - [etch] - dhttpd <no-dsa> (Minor issue) + [squeeze] - dhttpd <no-dsa> (Minor issue) [lenny] - dhttpd <no-dsa> (Minor issue) CVE-2009-5109 (Stack-based buffer overflow in Mini-Stream Ripper 3.0.1.1 allows ...) NOT-FOR-US: Mini-Stream Ripper @@ -1464,7 +1464,7 @@ CVE-2011-4786 RESERVED CVE-2011-4785 (Directory traversal vulnerability in the HP-ChaiSOE/1.0 web server on ...) - TODO: check + NOT-FOR-US: HP-ChaiSOE/1.0 web server CVE-2011-4784 (The NVIDIA Stereoscopic 3D driver before 7.17.12.7565 does not ...) NOT-FOR-US: NVIDIA Windows driver CVE-2011-4783 (The IDAPython plugin before 1.5.2.3 in IDA Pro allows user-assisted ...) @@ -1809,14 +1809,14 @@ - linux-2.6 3.1.5-1 CVE-2012-0043 [wireshark RLC buffer overflow] RESERVED - - wireshark <unfixed> + - wireshark 1.6.5-1 CVE-2012-0042 [wireshark unspecified NULL derefs] RESERVED - - wireshark <unfixed> (unimportant) + - wireshark 1.6.5-1 (unimportant) NOTE: Not suitable for code injection CVE-2012-0041 [wireshark file parser issues] RESERVED - - wireshark <unfixed> (unimportant) + - wireshark 1.6.5-1 (unimportant) NOTE: Only triggerable with social engineering CVE-2012-0040 [simpleSAMLphp cross site scripting] RESERVED @@ -2585,13 +2585,13 @@ CVE-2012-0005 (The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 ...) TODO: check CVE-2012-0004 (Unspecified vulnerability in DirectShow in DirectX in Microsoft ...) - TODO: check + NOT-FOR-US: DirectX CVE-2012-0003 (Unspecified vulnerability in winmm.dll in Windows Multimedia Library ...) TODO: check CVE-2012-0002 RESERVED CVE-2012-0001 (The kernel in Microsoft Windows XP SP2, Windows Server 2003 SP2, ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2011-4436 (Multiple cross-site scripting (XSS) vulnerabilities in the ...) NOT-FOR-US: Dell appliance CVE-2011-4435 (The web-server component in the Consolidation and Analysis Engine ...)